Home // SECURWARE 2013, The Seventh International Conference on Emerging Security Information, Systems and Technologies // View article
Authors:
Christoph Pohl
Hans-Joachim Hof
Keywords: intrusion detection, sensor, brute force, timing
Abstract:
Timing attacks are a challenge for current intrusion detection solutions. Timing attacks are dangerous for web applications because they may leak information about side channel vulnerabilities. This paper presents a massive-multi-sensor zero-configuration Intrusion Detection System that is especially good at detecting timing attacks. Unlike current solutions, the proposed Intrusion Detection System uses a huge number of sensors for attack detection. These sensors include sensors automatically inserted into web application or into the frameworks used to build web applications. With this approach the Intrusion Detection System is able to detect sophisticated attacks like timing attacks or other brute-force attacks with increased accuracy. The proposed massive-multi-sensor zero-configuration intrusion detection system does not need specific knowledge about the system to protect, hence it offers zero-configuration capability.
Pages: 66 to 71
Copyright: Copyright (c) IARIA, 2013
Publication date: August 25, 2013
Published in: conference
ISSN: 2162-2116
ISBN: 978-1-61208-298-1
Location: Barcelona, Spain
Dates: from August 25, 2013 to August 31, 2013